CVE-2008-1340

Currently unrated

Key Information:

Vendor: Vmware
Status: Ace; Player; Workstation; Vmware Workstation
Vendor: CVE Published:; 20 March 2008

Summary

Virtual Machine Communication Interface (VMCI) in VMware Workstation 6.0.x before 6.0.3, VMware Player 2.0.x before 2.0.3, and VMware ACE 2.0.x before 2.0.1 allows attackers to cause a denial of service (host OS crash) via crafted VMCI calls that trigger "memory exhaustion and memory corruption."

References

http://security.gentoo.org/glsa/glsa-201209-25.xml

vendor-advisoryx_refsource_GENTOO

http://securityreason.com/securityalert/3755

third-party-advisoryx_refsource_SREASON

https://exchange.xforce.ibmcloud.com/vulnerabilities/41250

vdb-entryx_refsource_XF

EPSS Score

3% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 20, 2008
Vulnerability Reserved
Mar 14, 2008